Tag Archives: VPN

VPN Vulnerabilities

NSA Releases Advisory on Mitigating Recent VPN Vulnerabilities

The National Security Agency (NSA) has released an advisory on advanced persistent threat (APT) actors exploiting multiple vulnerabilities in Virtual Private Network (VPN) applications. A remote attacker could exploit these vulnerabilities to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency (CISA) encourages administrators to review NSA’s Cybersecurity Advisory and CISA’s Current Activity on Vulnerabilities in Multiple VPN Applications for more information and apply the necessary updates or mitigations.


What are ATPs?

ATP are stealthy cyber attacks where a person or a group gains unauthorised access to a network and remains undetected.

In most cases, these attacks are conducted by nation-state, or criminal organisations (see article there). Their purposes are to extract information, intellectual property, financial data and can be used to steal cask when banks are attacked.

CCNA Security

The Certification

The CCNA Security certification is a CCNA level certification. The pre-requirement to take the certification is to hold a valid CCENT, CCNA Routing and Switching, or any CCIE certification.

The code for the  certification examination is 640-554 IINS (Implement Cisco IOS Network Security). The exam lasts 90 minutes, and includes 55 to 65 questions.

How to Prepare for the Exam?

The Cisco Academy in Manukau Engineering (Auckland) is running the Cisco Academy CCNAs course, starting this year on 21st July 2014. The course ends on 31st October, spread over 12 weeks.

Course Content

In Week one, we discover the fundamental principles of a secure network, malware, and attack methodologies.

In week 2, we start securing network devices.

In subsequent weeks, we discover AAA, implement firewall technologies, intrusion prevention. We then learn to secure the LAN.

Before discovering how to implement VPN (Virtual Private Networks), we spend a week learning about Cryptography.

The last two topics are managing a secure network, and implementing the Cisco ASA (Adaptive Security Appliance).  This is an advanced stateful firewall  also providing VPN functionality (VPN concentrator) as well as intrusion prevention (IPS).

How to enroll on the course?

You can ring on 09 968 8765 ext 8263 or  use http://www.technologysecurity.org/contact/

You can also use the same contact page, should you wish to have a look around and meet the instructor.

The “official” name for the course is Advanced Network Engineering 1.

The CCNA Security course can be completed as a stand alone (Certificate of Proficiency), or as part of the Bachelor of Engineering Technology (Electrical), Networking major.

One of the device used in the course.

One of the devices used in the course.